CVE-2023-4873
CVSS 3.1 Score 6.7 of 10 (medium)
Details
Published Sep 10, 2023
Updated: May 17, 2024
Summary
CVE-2023-4873 is a critical vulnerability affecting the Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to version 20230906. This issue lies in an unknown function of the /importexport.php file, which can be exploited through manipulating the sql argument leading to OS command injection. The attack can be executed remotely, and the vulnerability has been disclosed to the public, increasing the risk of exploitation. VDB-239358 is the assigned identifier to this exposed security flaw.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share